Security Plugin for a System-On-A-Chip Platform

2. The system of claim 1, wherein the interconnect endpoint includes an interconnect header analyzer to determine whether a message received from the interconnect is encrypted and relay the message to the security block if it is encrypted via the security interconnect and by-pass the security interconnect otherwise.

4. The system of claim 1, wherein the cryptographic circuit includes an integrity engine selected from a plurality of integrity engines, and wherein the standard interface is generic to the plurality of integrity engines.

5. The system of claim 1, wherein the plurality of cryptographic engines are classified by at least one of die size, power consumption, cost, throughput performance, or cryptographic performance.

6. The system of claim 1, wherein to manage cryptographic session states between the initiator component and the destination component includes the cryptographic state manager to maintain a data structure of cryptographic sessions, the data structure including fields for a destination component, a sequence number, and a session key.

7. The system of claim 6, wherein the session key is different for different cryptographic sessions.

9. The system of claim 8, wherein the means for encrypting the component message includes means for adding a message integrity element from a message integrity circuit of the security component.

11. The system of claim 10, wherein the second encrypted message includes an invalid message integrity element.

14. The system of claim 8, comprising means for establishing a cryptographic session for facilitating communication between the system-on-a-chip component and a destination component.

15. The system of claim 14, wherein a session key for the cryptographic session is used by the cryptographic engine to encrypt the component message.

16. The system of claim 15, wherein the session key corresponds to the communications stream and no other communications stream of the interconnect.

17. The system of claim 8, wherein every message transmitted from the bus endpoint is encrypted by the security component.

18. The system of claim 17, wherein every message traversing a bus to which the bus endpoint is a terminus is encrypted by respective security components in endpoints of the bus.